CVE-2006-4800

2006-09-1400:00:00

ubuntu.com

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.214

Percentile

96.5%

JSON

Multiple buffer overflows in libavcodec in ffmpeg before 0.4.9_p20060530
allow remote attackers to cause a denial of service or possibly execute
arbitrary code via multiple unspecified vectors in (1) dtsdec.c, (2)
vorbis.c, (3) rm.c, (4) sierravmd.c, (5) smacker.c, (6) tta.c, (7) 4xm.c,
(8) alac.c, (9) cook.c, (10) shorten.c, (11) smacker.c, (12) snow.c, and
(13) tta.c. NOTE: it is likely that this is a different vulnerability than
CVE-2005-4048 and CVE-2006-2802.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchffmpeg< 0.cvs20050918-5ubuntu1.1UNKNOWN
ubuntu7.04noarchgst-ffmpeg< 0.8.7-10ubuntu1UNKNOWN
ubuntu7.04noarchgstreamer0.10-ffmpeg< 0.10.2-0ubuntu4UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	ffmpeg	< 0.cvs20050918-5ubuntu1.1	UNKNOWN
ubuntu	7.04	noarch	gst-ffmpeg	< 0.8.7-10ubuntu1	UNKNOWN
ubuntu	7.04	noarch	gstreamer0.10-ffmpeg	< 0.10.2-0ubuntu4	UNKNOWN